Manager, Cybersecurity

Manager, Cybersecurity

Role Summary: 

The Cybersecurity Manager oversees TireHub’s cybersecurity function, ensuring the company’s security posture. This role determines security requirements, implements and tests security systems, and develops policies and standards. Working cross-functionally with internal and third-party teams, the manager deploys security tools, detection, and monitoring systems, leads responses to critical incidents and threats, and oversees threat hunting and penetration testing. Additionally, the role ensures compliance with company policies, contractual obligations, and relevant regulations.

This role will report to the Director of Cybersecurity and Infrastructure.

The individual must exhibit the following core TireHub commitments:

·         Approachable - If a company could smile, we would. Instead, we rely on our people to show it. We care about each other and our customers because we know business only gets done right when people respect each other and value relationships.

·         Adventurous - What TireHub is set up to do is intentionally outrageous. So, we readily embrace challenges with the courage to introduce new ideas and the ambition to build something unique.

·         Relentless - We tackle our work with energy. We deliver on our commitments with enthusiasm. And we don't give up until we get to the end. 

·         Speedy - Speed is the currency in the tire industry. When we commit to a job, we get the job done – and we do it fast. 

Role Specifics:

·         Managed Security Service Provider (MSSP) Oversight: Oversees TireHub’s MSSPs to ensure service objectives are met and address operational escalations.

·         Security Monitoring & Incident Response: Ensures all TireHub assets and applications are monitored for security events and scanned for vulnerabilities.

·         Serves as the third-level escalation contact for security events and incidents.

·         Security Tools & Infrastructure Management: Interprets and implements change requests for managed security devices, including endpoint security, firewalls, and other security tools.

·         Remotely access and manage security devices across various national locations.

·         Project Leadership & Training: Leads projects, assignments, and initiatives as assigned by management.

·         Conducts enterprise-wide phishing campaigns and security awareness training.

·         Compliance & Security Frameworks: Applies industry-standard security practices and frameworks such as CIS Top 18 and NIST CSF to enhance TireHub’s cybersecurity program.

·         Stays updated on the latest IT trends and technologies to continuously improve IT services and support.

·         Participates and maintains ongoing training requirements through in-class, in-person, or computer-based learning modules, as assigned.

·         Must be able to comply with all TireHub policies and procedures.

·         Completes other tasks assigned by their supervisor or another member of leadership.

Competencies:

• Vendor Management: Demonstrated ability to manage vendor provided services, including overseeing contractual responsibilities and key performance metrics (KPIs)
• Network Infrastructure: Hands-on experience with computer networks, wired and wireless, network administration, and network infrastructure installation.
• Security: Knowledge of cybersecurity practices and the ability to implement security measures to protect warehouse and corporate IT infrastructure.
• Project Management: Ability to manage IT projects, including planning, execution, and monitoring, ensuring projects are completed on time and within budget.
• Technical Leadership: Proven experience in leading technical teams, providing guidance, and fostering a collaborative work environment.
• Problem-Solving: Strong analytical and problem-solving skills to diagnose and resolve technical issues efficiently.

Communication: Excellent communication skills to interact with team members, stakeholders, and external partners effectively

Education/Experience:

·         Bachelor’s degree in Computer Science, Information Security, or a related field preferred. An unrelated degree or no degree with relevant experience will be considered

• 2+ years managing a third-party managed detection and response service.
• 5+ years of combined cybersecurity experience in at least two of the following areas: endpoint security, network security, cloud security, web security, application security, incident response, or Security Operations Center (SOC).

·         Certifications: Non-vendor-specific certifications such as Linux+, Security+, CISSP, Network+, or SANS/GIAC (GCFW, GCIA, GCIH).

Knowledge, Skills, and Abilities:

·         Expertise in Security Operations Center (SOC) best practices, vulnerability management, incident response (IR), risk assessments, and IT compliance audits.

·         Experience developing phishing campaigns and security awareness training.

·         Strong knowledge of SIEM technologies, including alerting, triage, and incident handling.

·         Experience conducting forensic investigations using industry-standard tools to meet insurance and legal scrutiny.

·         Intermediate networking expertise, including advanced routing principles and protocols such as GRE, BGP, OSPF, ARP/NAT, and command-line interfaces.

·         Ability to interpret network diagrams, primarily through Microsoft Visio.

·         Experience with cloud security, including appropriate security measures for different service levels (SaaS, IaaS, etc.).

·         Fluent in cloud-based solutions and the differences in what levels of security needed for the level of service provided (SAAS, IAAS etc.).

·         Highly analytical with the ability to process complex data accurately under pressure.

·         Proven ability to effectively manage multiple tasks, prioritize workload, and adapt to shifting priorities.

·         Ability to manage time effectively to meet deadlines, demonstrating a strong capacity for planning and execution in a fast-paced environment.

·         Proficiency with Microsoft Office Suite (Excel, Word, PowerPoint, and Outlook).

·         Excellent written and verbal communication skills.

·        A valid Driver’s license with at least 2 years of driving experience required (3 years preferred; Does not include time on learner’s permits).

Working Conditions:

• This is a fast-paced and dynamic operating environment.
• Most of the time is spent sitting, constantly viewing monitors in a comfortable position with frequent opportunity to move around. There may be occasions to move or lift light articles.
• Must be available after hours for systems changes and emergency events.
• This is a remote position, preferably based in Atlanta, GA, with the flexibility to report to headquarters as needed.

Salary Range - $140,000 - $170,000